nerdexam
(ISC)2

CAP · Question #307

What is the objective of the Security Accreditation Decision task?

The correct answer is A. To determine whether the agency-level risk is acceptable or not.. The Security Accreditation Decision task involves the Designated Approving Authority (DAA) reviewing the certification findings and determining whether the residual risk to the agency's operations is at an acceptable level. The objective is specifically to determine whether the a

Security and Privacy Governance, Risk Management, and Compliance Program

Question

What is the objective of the Security Accreditation Decision task?

Options

  • ATo determine whether the agency-level risk is acceptable or not.
  • BTo make an accreditation decision
  • CTo accredit the information system
  • DTo approve revisions of NIACAP

How the community answered

(22 responses)
  • A
    95% (21)
  • D
    5% (1)

Explanation

The Security Accreditation Decision task involves the Designated Approving Authority (DAA) reviewing the certification findings and determining whether the residual risk to the agency's operations is at an acceptable level. The objective is specifically to determine whether the agency-level risk is acceptable or not (A). While the outcome may be an accreditation decision (B) or accrediting the system (C), the core objective - the purpose of the task - is evaluating risk acceptability. Option D is incorrect as NIACAP revisions are a separate administrative process unrelated to this task's objective.

Topics

#Accreditation Decision#Risk Acceptance#Risk Management Framework (RMF)#Authorization to Operate (ATO)

Community Discussion

No community discussion yet for this question.

Full CAP Practice